InterPlanetary Storm Malware Using IPFS P2P Network to Hide Its Activities
A malware campaign dubbed InterPlanetary Storm is hiding its network activity among legitimate traffic by using a P2P network for its command-and-control communications.
Podcast: Development Agility and Open-Source Vulnerability Prioritization
Open-source vulnerabilities are on the rise, but enterprises are struggling to effectively prioritize and remediate these threats.
Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT
Researchers spotted a phishing campaign delivering a multi-feature, open-source remote administration tool known as Babylon RAT.
Attackers Use EternalBlue and PowerShell Scripts to Spread Cryptomining Malware Across Asia
A cryptomining malware campaign originally discovered in January is now using the EternalBlue exploit to target users in Asia, according to security researchers.
Take Your Relationship With DevSecOps to the Next Level
Like any relationship, DevSecOps works best when there is a solid commitment, open communication and strong resolve in the face of challenges.
New Reverse Proxy Tool Can Bypass Two-Factor Authentication and Automate Phishing Attacks
A new reverse proxy tool called Modlishka can easily automate phishing attacks and bypass two-factor authentication (2FA) — and it's available for download on GitHub.
The New Currency for Business Is Security Culture
Given the historic data breaches, widespread vulnerabilities and onslaught of data privacy regulations that affected businesses around the world in 2018, security culture is more crucial than ever.
New Gallmaker Attack Group Using Living-off-the-Land Tactics in Espionage Campaign
A new attack group known as Gallmaker spied on military and government organizations by employing living-off-the-land tactics.
Maximize the Power of Your Open Source Application Security Testing
To secure products that use open source components, organizations must first take stock of how much of this code they are using in their products.
Malware Attacks Exploit Open Source MDM Software to Compromise iPhones and Apps
Researchers observed 13 malware attacks targeting iPhone users in India that exploited open source mobile device management (MDM) tools to breach corporate devices.